17 matches found
CVE-2024-21468
Memory corruption when there is failed unmap operation in GPU.
CVE-2023-33120
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
CVE-2024-43052
Memory corruption while processing API calls to NPU with invalid input.
CVE-2024-33042
Memory corruption when Alternative Frequency offset value is set to 255.
CVE-2024-33052
Memory corruption when user provides data for FM HCI command control operations.
CVE-2023-33066
Memory corruption in Audio while processing RT proxy port register driver.
CVE-2024-38422
Memory corruption while processing voice packet with arbitrary data received from ADSP.
CVE-2023-33033
Memory corruption in Audio during playback with speaker protection.
CVE-2024-33043
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
CVE-2023-43551
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
CVE-2023-33030
Memory corruption in HLOS while running playready use-case.
CVE-2024-38423
Memory corruption while processing GPU page table switch.
CVE-2017-11076
On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to an invalid memory access by the decoder.
CVE-2017-9711
Certain unprivileged processes are able to perform IOCTL calls.
CVE-2018-5852
An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while reading NAT entry using debugfs command 'cat /sys/kernel/debug/ipa/ip4_nat'
CVE-2018-11952
An image with a version lower than the fuse version may potentially be booted lead to improper authentication.
CVE-2024-23353
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.